A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Mon, 16 Sep 2024 20:45:00 +0000
Wed, 07 Aug 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:/a:redhat:enterprise_linux:8 |
Wed, 07 Aug 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:/a:redhat:enterprise_linux:8::appstream cpe:/a:redhat:enterprise_linux:8::crb |
|
References |
|
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2024-01-25T20:03:40.971Z
Updated: 2024-11-24T17:00:49.033Z
Reserved: 2024-01-24T14:08:49.010Z
Link: CVE-2023-52356
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-01-25T20:15:39.063
Modified: 2024-11-21T08:39:38.163
Link: CVE-2023-52356
Redhat